OSV-2018-42

See a problem?

Import Source

https://github.com/google/oss-fuzz-vulns/blob/main/vulns/gstreamer/OSV-2018-42.yaml

JSON Data

https://api.osv.dev/v1/vulns/OSV-2018-42

Published

2021-01-13T00:00:23.803331Z

Modified

2022-04-13T03:04:33.806745Z

Summary

Heap-buffer-overflow in tap_type_find

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=8159

Crash type: Heap-buffer-overflow READ 12
Crash state:
tap_type_find
gst_type_find_factory_call_function
gst_type_find_helper_for_data

References

https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=8159

Affected packages

OSS-Fuzz / gstreamer

Package

Name: gstreamer
Purl: pkg:generic/gstreamer

Affected ranges

Type: GIT
Repo: https://gitlab.freedesktop.org/gstreamer/gstreamer.git
Events: Introduced

583a4677af9521d785fbe2586cedfb8f00ddf9c5

Fixed

80dfb7bb3f415dac465f89f8945a1546c4fcc280

Affected versions

1.*

1.14.1

1.14.2

1.14.3

1.14.4

1.14.5

Ecosystem specific

{
    "fixed_range": "4fb02fc85b70be631f5331b2547e5dc61ef7a43a:80dfb7bb3f415dac465f89f8945a1546c4fcc280",
    "severity": "MEDIUM",
    "introduced_range": "554f604d37970c26fc61726eec2f81a384a691fc:4fb02fc85b70be631f5331b2547e5dc61ef7a43a"
}

Database specific

source

"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/gstreamer/OSV-2018-42.yaml"